The odd thing is that not all auths fail and those that do will eventually manage a successful authentication. The CPPMs have been joined to our active directory and are set to use any domain controller that replies to the request.

Re: CPPM Fails some user auths due to not finding socket for the domain

‎04-09-201508:11 AM

Hello,

We're using Clearpass 6.4.5.71640 and have the same issue.

The Clearpass appliances are joined to the root of Active Directory domains with approbation relationships between them.

The LDAP search is working very well into each domain after binding with a single service account, using the approbation relationships, but then authentication of the computer object fails with a "not finding socket for the domain" error.

If we do a packet capture we can see that the Clearpass appliances never tried to connect to anything.